projects / mirror / dsa-puppet.git / history
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
Note that exim contains tracker-specific configuration
[mirror/dsa-puppet.git] / modules / ferm /
2019-10-01 Peter Palfraderretire manual firewalling on bmdb1 for dak replica... tree | commitdiff
2019-09-30 Peter Palfradermanage bmdb1/main pg_hba tree | commitdiff
2019-09-30 Peter PalfraderMove draghi finger/ldap/ldaps fw into dbmaster role tree | commitdiff
2019-09-30 Peter PalfraderMove gombert infinoted fw into gobby role tree | commitdiff
2019-09-30 Peter PalfraderMove kaufmann keyserver fw into keyring role tree | commitdiff
2019-09-30 Peter Palfradermanage ullmann/udd pg_hba tree | commitdiff
2019-09-29 Peter Palfradermanage danzi/wanna-build pg_hba tree | commitdiff
2019-09-29 Peter Palfradermanage danzi/main pg_hba tree | commitdiff
2019-09-29 Peter Palfradermanage danzi/tracker pg_hba tree | commitdiff
2019-09-29 Peter Palfraderremove manual firewall allow snapshotdb-manda-01->sallinen tree | commitdiff
2019-09-29 Peter Palfraderremove manual firewall allow leaseweb->snapshotdb-manda-01 tree | commitdiff
2019-09-29 Peter Palfraderremove manual firewall allow bmdb1->fasolo tree | commitdiff
2019-09-29 Peter Palfradermanage debsources access to its DB on bmdb1 tree | commitdiff
2019-09-29 Julien CristauMerge branch 'fordsa' of https://git.adam-barratt.org... tree | commitdiff
2019-09-29 Peter Palfraderfix ferm::rule::chain template tree | commitdiff
2019-09-29 Peter Palfraderpuppet rule to create an empty ferm chain tree | commitdiff
2019-09-29 Peter Palfraderreload ferm when files are removed tree | commitdiff
2019-09-29 Julien CristauMerge branch 'fordsa' of https://git.adam-barratt.org... tree | commitdiff
2019-09-29 Peter PalfraderRemove manual fw for dinis/storace access to postgresql... tree | commitdiff
2019-09-28 Peter Palfraderlw07 no longer runs a snapshot pg db tree | commitdiff
2019-09-28 Peter Palfradermigrate away from old postgres_backup_server role tree | commitdiff
2019-09-28 Peter Palfraderswitch sallinen to modern pg backup config fu tree | commitdiff
2019-09-28 Peter Palfraderswitch bmdb1 to modern pg backup config fu tree | commitdiff
2019-09-28 Peter Palfraderswitch seger to modern pg backup config fu tree | commitdiff
2019-09-28 Peter Palfraderremove explicit ferm allow from the pgbackup hosts... tree | commitdiff
2019-09-28 Aurelien JarnoDrop the dedup cluster at bytemark tree | commitdiff
2019-09-28 Aurelien JarnoDrop HOST_PGBACKUPHOST_V4 and HOST_PGBACKUPHOST_V6 tree | commitdiff
2019-09-28 Aurelien Jarnoferm@serger: merge dsa-postgres-backup and dsa-postgres... tree | commitdiff
2019-09-28 Aurelien JarnoDrop HOST_DEBIAN_V4 and HOST_DEBIAN_V6 tree | commitdiff
2019-09-27 Aurelien Jarnoferm: do not open PG to backup hosts for clusters defin... tree | commitdiff
2019-09-27 Aurelien Jarnopg@danzi: use a list of hosts instead of whitelisting... tree | commitdiff
2019-09-25 Peter PalfraderDocument ferm::rule::simple tree | commitdiff
2019-09-24 Julien Cristauticharich no longer needs access to bmdb1 tree | commitdiff
2019-09-24 Julien Cristauparadis at ubc tree | commitdiff
2019-09-23 Julien Cristaubacula cluster moved to postgresql-manda-01 tree | commitdiff
2019-09-22 Aurelien Jarnodanzi: merge dsa-postgres2-danzi and dsa-postgres2... tree | commitdiff
2019-09-22 Aurelien Jarnodanzi: merge dsa-postgres-danzi and dsa-postgres-danzi6 tree | commitdiff
2019-09-22 Aurelien JarnoAllow access to the tracker db @ danzi from ticharich tree | commitdiff
2019-09-22 Peter Palfradernagiosmaster -> hiera role; bind acls still not converted tree | commitdiff
2019-09-22 Peter Palfradermerge SSH_SOURCES and SSH_V6_SOURCES tree | commitdiff
2019-09-22 Peter PalfraderRemove empty ferm::zivit tree | commitdiff
2019-09-22 Peter Palfraderiptables -vnL on zelenka suggests that zivit no longer... tree | commitdiff
2019-09-22 Peter PalfraderApparently we no longer monitor the time service on... tree | commitdiff
2019-09-22 Peter Palfradermuninmaster -> hiera role, new ssh store/collect, no... tree | commitdiff
2019-09-22 Peter Palfraderretire old HOST_MAILRELAY ferm variable tree | commitdiff
2019-09-22 Peter Palfraderremove smtp_sources from ferm's me.conf, retire old... tree | commitdiff
2019-09-21 Peter Palfraderremove old-style ssh firewalling setup for mirrors... tree | commitdiff
2019-09-21 Aurelien JarnoDecommission rusca (RT#7949) tree | commitdiff
2019-09-21 Peter Palfraderretire old-style firewalling for mirrormaster sshing... tree | commitdiff
2019-09-21 Julien CristauRevert "ferm: open ssh from mirror-master to ports... tree | commitdiff
2019-09-21 Julien Cristauferm: open ssh from mirror-master to ports mirror tree | commitdiff
2019-09-20 Peter PalfraderRetire unused extranrpeclient role -- the mini-nag... tree | commitdiff
2019-09-16 Aurelien JarnoUpdate wuiet IP address tree | commitdiff
2019-09-16 Aurelien Jarnowannabuild has been moved from bmdb1 to danzi tree | commitdiff
2019-09-16 Peter Palfradermake dns primary export and keyring host collect firewa... tree | commitdiff
2019-09-16 Peter PalfraderIf the name is too long for netfilter, hash it tree | commitdiff
2019-09-16 Peter Palfradermove 3rd party nameserver info from the ferm template... tree | commitdiff
2019-09-16 Peter PalfraderTry a new ferm rule class tree | commitdiff
2019-09-16 Peter Palfraderwhitespace/quoting: modules/ferm/manifests/ (make lint... tree | commitdiff
2019-09-15 Peter PalfraderOne of the last changes broke dbmaster role based ferm... tree | commitdiff
2019-09-15 Peter Palfraderdo not use role-based ssh restrict tree | commitdiff
2019-09-13 Peter PalfraderTry to avoid reserved site keyword tree | commitdiff
2019-09-11 Peter PalfraderRetire unused ferm varible definitions for HOST_STATIC* tree | commitdiff
2019-09-11 Peter Palfraderssh between static hosts should be handled by the ssh... tree | commitdiff
2019-09-11 Peter Palfraderrestrict ssh to static-master-ubc-01 by default. we... tree | commitdiff
2019-09-11 Peter Palfraderrestrict ssh to static-master-grnet-01 by default.... tree | commitdiff
2019-09-10 Julien Cristauferm::ftp_conntrack: remove jessie support tree | commitdiff
2019-09-07 Peter Palfraderstop using virtual resources for ferm::rule tree | commitdiff
2019-09-07 Peter Palfraderssh restrict dns geo and dns primary hosts tree | commitdiff
2019-09-07 Peter Palfraderno longer need to manually whitelist adayevskaya on... tree | commitdiff
2019-09-07 Peter Palfradergitolite pushes puppetmaster tree | commitdiff
2019-09-07 Peter Palfradermake puppetmaster a role included via hiera tree | commitdiff
2019-09-07 Peter PalfraderMove adayevskaya from bm to manda tree | commitdiff
2019-08-30 Peter Palfraderremove olin from bmdb1 access tree | commitdiff
2019-08-28 Aurelien JarnoFix CSAIL IPv6 subnet tree | commitdiff
2019-08-28 Aurelien Jarnoferm: drop FREEBSD_SSH_ACCESS tree | commitdiff
2019-08-28 Aurelien Jarnoferm: add syncproxy.na.debian.org IPv6 tree | commitdiff
2019-08-22 Peter Palfradermove syslog ferm into syslog role tree | commitdiff
2019-07-07 Peter Palfradergeo ferm tree | commitdiff
2019-07-07 Peter Palfradergeo ferm tree | commitdiff
2019-07-07 Peter Palfraderfw on kaufmann tree | commitdiff
2019-07-07 Peter Palfraderunify v4 and v6 rules in named::primary tree | commitdiff
2019-06-09 Luca Filipozziallow ssh access to ubc-node-arm* from ubc-bulwark... tree | commitdiff
2019-05-28 Peter Palfradersnapshotdb-manda-01: allow pg access from lw tree | commitdiff
2019-05-23 Peter PalfraderAllow snapshotdb-manda-01 to access pg on sallinen tree | commitdiff
2019-04-03 Aurelien JarnoAllow access to dak@bmdb1 from ullmann tree | commitdiff
2019-04-03 Aurelien JarnoAllow access to wanna-build@bmdb1 from respighi tree | commitdiff
2019-04-02 Aurelien JarnoAllow access to ullmann from wuiet tree | commitdiff
2019-03-17 Aurelien JarnoDecommission lully.d.o tree | commitdiff
2019-01-28 Julien Cristauadd loghost-osuosl-01 tree | commitdiff
2019-01-02 Tollef Fog HeenOpen up some IPs for tfheen tree | commitdiff
2018-12-17 Peter Palfraderreload ferm on changes instead of restart tree | commitdiff
2018-11-18 Peter PalfraderAlso restrict "ganeti/kvm host" purpose tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: sallinen tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: bmdb1:debsources, fix tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: bmdb1:debsources tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: bmdb1:dedup tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: bmdb1:bacula tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: bmdb1:wannabuild, remove duplicate allow... tree | commitdiff
2018-11-13 Peter Palfraderferm cleanup: bmdb1:wannabuild tree | commitdiff
next
Unnamed repository; edit this file 'description' to name the repository.